Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/cbd8e7-312c-4a48-830d-aa755b12de80/1/bLek4w4JilRrUC7k7YD6P7DVzMw.roa
File: bLek4w4JilRrUC7k7YD6P7DVzMw.roa (raw, json)
Hash identifier: LXHSSHDar78RB4k9sdvM1v+ct2Dl3KFEWyQcANHRSMs=
Subject key identifier: 6C:B7:A4:E3:0E:09:8A:54:6B:50:2E:E4:ED:80:FA:3F:B0:D5:CC:CC
Certificate issuer: /CN=1f106f466c4afa3b9dc3bfff43caf70b8658c4e2
Certificate serial: 03196378
Authority key identifier: 1F:10:6F:46:6C:4A:FA:3B:9D:C3:BF:FF:43:CA:F7:0B:86:58:C4:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HxBvRmxK-judw7__Q8r3C4ZYxOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/cbd8e7-312c-4a48-830d-aa755b12de80/1/bLek4w4JilRrUC7k7YD6P7DVzMw.roa
Signing time: Sat 01 Jan 2022 11:02:15 +0000
ROA not before: Sat 01 Jan 2022 11:02:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25234
IP address blocks: 45.10.97.0/24 maxlen: 24
45.148.80.0/22 maxlen: 22
2a10:bbc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51995512 (0x3196378)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f106f466c4afa3b9dc3bfff43caf70b8658c4e2
Validity
Not Before: Jan 1 11:02:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6cb7a4e30e098a546b502ee4ed80fa3fb0d5cccc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:09:7f:46:7e:c0:3a:2a:b9:3f:c3:60:a0:06:
a1:1b:76:f6:53:70:0a:e5:2d:c5:00:f4:c2:cc:62:
37:ce:31:ad:fe:3c:aa:6f:66:98:94:3a:83:a8:3a:
55:47:3b:77:d7:a8:0f:1d:ae:a6:3c:81:98:7c:0d:
2d:7d:a1:42:71:e4:a5:88:53:32:f4:01:1e:19:db:
08:94:8d:03:2c:40:3c:f5:86:b5:b3:78:53:01:69:
ff:e9:3d:20:09:83:cc:99:36:da:d9:ae:e2:35:ca:
9d:3a:70:12:ff:6b:aa:48:54:b9:9f:90:d7:b4:c1:
3a:49:49:cc:d2:71:84:83:f1:7d:5e:2b:01:b5:32:
40:3c:3f:fe:7e:62:82:68:b1:46:ce:47:70:79:21:
6b:51:e6:6a:df:74:07:a5:35:f6:e4:4d:32:61:00:
72:67:f5:ed:40:ce:a9:3d:5e:22:86:34:86:11:c8:
f0:5d:92:e5:ec:ef:bc:a5:3d:18:09:52:9b:d8:3b:
36:fd:1c:6d:26:7a:06:75:5d:59:57:ad:2a:af:7c:
8d:2a:57:e3:37:fe:7c:58:b1:58:da:19:69:40:20:
93:b2:c6:89:03:6c:e3:c8:f0:d8:0a:be:ed:c4:4e:
9e:c1:07:70:2f:dc:75:ea:77:ed:ea:28:1e:8a:28:
53:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:B7:A4:E3:0E:09:8A:54:6B:50:2E:E4:ED:80:FA:3F:B0:D5:CC:CC
X509v3 Authority Key Identifier:
keyid:1F:10:6F:46:6C:4A:FA:3B:9D:C3:BF:FF:43:CA:F7:0B:86:58:C4:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HxBvRmxK-judw7__Q8r3C4ZYxOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/cbd8e7-312c-4a48-830d-aa755b12de80/1/bLek4w4JilRrUC7k7YD6P7DVzMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/cbd8e7-312c-4a48-830d-aa755b12de80/1/HxBvRmxK-judw7__Q8r3C4ZYxOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.97.0/24
45.148.80.0/22
IPv6:
2a10:bbc0::/32
Signature Algorithm: sha256WithRSAEncryption
72:c1:9e:d5:83:c2:6d:eb:5c:02:20:37:2e:06:28:ad:fa:d3:
90:c0:22:80:14:2e:07:b7:30:c6:ff:aa:fd:f0:46:c9:f1:0c:
6c:d0:4c:b4:b6:75:a8:1f:d7:db:66:05:21:0f:f6:e9:0f:63:
27:c0:17:14:17:67:8a:76:6b:ca:c3:5f:f4:ef:fc:16:f9:8b:
89:9c:e3:9a:50:66:ae:2a:a6:a0:40:e4:21:16:d0:83:3b:56:
d9:62:f6:69:b7:82:f8:d8:1d:c9:62:94:f5:1d:c5:ff:f6:0c:
90:2b:f5:38:fd:d9:61:46:66:aa:1b:74:eb:ed:d2:ac:99:43:
c7:55:ab:e5:77:72:bd:79:62:f3:e7:b8:08:db:ac:eb:72:97:
4e:27:ce:62:39:ad:93:af:af:19:2f:62:c6:05:c5:4a:e1:9a:
c1:9f:9c:04:ae:8c:d3:2a:2c:6e:6e:d9:84:8a:a5:22:de:dd:
fe:ee:db:50:27:ce:3b:48:ff:61:39:81:7e:0d:32:4f:38:6c:
04:c1:50:b2:13:00:c8:e8:36:a3:5f:dc:8c:31:ae:0d:80:cc:
4d:28:cf:0a:88:57:f6:27:77:6d:e3:69:51:be:31:ed:8a:d2:
06:b4:69:fe:01:5c:6e:c1:1b:d5:71:9a:19:0e:1e:c9:4c:e3:
71:ae:3b:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:28 2023 by rpki-client on console-fra.rpki-client.org